Merge pull request #3075 from chef/one_last_time

Bump openssl and all other deps

Author: tas50

Gemfile.lock

@@ -31,8 +31,8 @@ GEM
     artifactory (3.0.15)
     ast (2.4.1)
     aws-eventstream (1.1.0)
-    aws-partitions (1.402.0)
-    aws-sdk-apigateway (1.56.0)
+    aws-partitions (1.406.0)
+    aws-sdk-apigateway (1.57.0)
       aws-sdk-core (~> 3, >= 3.109.0)
       aws-sigv4 (~> 1.1)
     aws-sdk-apigatewayv2 (1.29.0)
@@ -59,10 +59,10 @@ GEM
     aws-sdk-cloudhsmv2 (1.31.0)
       aws-sdk-core (~> 3, >= 3.109.0)
       aws-sigv4 (~> 1.1)
-    aws-sdk-cloudtrail (1.30.0)
+    aws-sdk-cloudtrail (1.31.0)
       aws-sdk-core (~> 3, >= 3.109.0)
       aws-sigv4 (~> 1.1)
-    aws-sdk-cloudwatch (1.46.0)
+    aws-sdk-cloudwatch (1.47.0)
       aws-sdk-core (~> 3, >= 3.109.0)
       aws-sigv4 (~> 1.1)
     aws-sdk-cloudwatchlogs (1.38.0)
@@ -80,7 +80,7 @@ GEM
     aws-sdk-configservice (1.53.0)
       aws-sdk-core (~> 3, >= 3.109.0)
       aws-sigv4 (~> 1.1)
-    aws-sdk-core (3.109.3)
+    aws-sdk-core (3.110.0)
       aws-eventstream (~> 1, >= 1.0.2)
       aws-partitions (~> 1, >= 1.239.0)
       aws-sigv4 (~> 1.1)
@@ -91,10 +91,10 @@ GEM
     aws-sdk-dynamodb (1.58.0)
       aws-sdk-core (~> 3, >= 3.109.0)
       aws-sigv4 (~> 1.1)
-    aws-sdk-ec2 (1.213.0)
+    aws-sdk-ec2 (1.217.0)
       aws-sdk-core (~> 3, >= 3.109.0)
       aws-sigv4 (~> 1.1)
-    aws-sdk-ecr (1.39.0)
+    aws-sdk-ecr (1.40.0)
       aws-sdk-core (~> 3, >= 3.109.0)
       aws-sigv4 (~> 1.1)
     aws-sdk-ecs (1.72.0)
@@ -124,13 +124,13 @@ GEM
     aws-sdk-firehose (1.35.0)
       aws-sdk-core (~> 3, >= 3.109.0)
       aws-sigv4 (~> 1.1)
-    aws-sdk-guardduty (1.42.0)
+    aws-sdk-guardduty (1.43.0)
       aws-sdk-core (~> 3, >= 3.109.0)
       aws-sigv4 (~> 1.1)
     aws-sdk-iam (1.46.0)
       aws-sdk-core (~> 3, >= 3.109.0)
       aws-sigv4 (~> 1.1)
-    aws-sdk-kafka (1.31.0)
+    aws-sdk-kafka (1.32.0)
       aws-sdk-core (~> 3, >= 3.109.0)
       aws-sigv4 (~> 1.1)
     aws-sdk-kinesis (1.30.0)
@@ -139,16 +139,16 @@ GEM
     aws-sdk-kms (1.39.0)
       aws-sdk-core (~> 3, >= 3.109.0)
       aws-sigv4 (~> 1.1)
-    aws-sdk-lambda (1.55.0)
+    aws-sdk-lambda (1.56.0)
       aws-sdk-core (~> 3, >= 3.109.0)
       aws-sigv4 (~> 1.1)
     aws-sdk-organizations (1.17.0)
       aws-sdk-core (~> 3, >= 3.39.0)
       aws-sigv4 (~> 1.0)
-    aws-sdk-rds (1.106.0)
+    aws-sdk-rds (1.107.0)
       aws-sdk-core (~> 3, >= 3.109.0)
       aws-sigv4 (~> 1.1)
-    aws-sdk-redshift (1.51.0)
+    aws-sdk-redshift (1.52.0)
       aws-sdk-core (~> 3, >= 3.109.0)
       aws-sigv4 (~> 1.1)
     aws-sdk-route53 (1.44.0)
@@ -160,9 +160,9 @@ GEM
     aws-sdk-route53resolver (1.21.0)
       aws-sdk-core (~> 3, >= 3.109.0)
       aws-sigv4 (~> 1.1)
-    aws-sdk-s3 (1.86.0)
+    aws-sdk-s3 (1.86.2)
       aws-sdk-core (~> 3, >= 3.109.0)
-      aws-sdk-kms (~> 1)
+      aws-sdk-kms (~> 1.26)
       aws-sigv4 (~> 1.1)
     aws-sdk-securityhub (1.36.0)
       aws-sdk-core (~> 3, >= 3.109.0)
@@ -179,7 +179,7 @@ GEM
     aws-sdk-sqs (1.34.0)
       aws-sdk-core (~> 3, >= 3.109.0)
       aws-sigv4 (~> 1.1)
-    aws-sdk-ssm (1.98.0)
+    aws-sdk-ssm (1.99.0)
       aws-sdk-core (~> 3, >= 3.109.0)
       aws-sigv4 (~> 1.1)
     aws-sigv4 (1.2.2)
@@ -382,13 +382,11 @@ GEM
       kartograph (~> 0.2.3)
       resource_kit (~> 0.1.5)
       virtus (~> 1.0.3)
-    ecma-re-validator (0.2.1)
-      regexp_parser (~> 1.2)
     ed25519 (1.2.4)
     equalizer (0.0.11)
     erubi (1.10.0)
     erubis (2.7.0)
-    excon (0.78.0)
+    excon (0.78.1)
     faraday (1.0.1)
       multipart-post (>= 1.2, < 3)
     faraday-cookie_jar (0.0.7)
@@ -454,7 +452,6 @@ GEM
       thor (>= 0.18.1)
     gyoku (1.3.1)
       builder (>= 2.1.2)
-    hana (1.3.6)
     hashie (3.6.0)
     highline (1.7.10)
     http-cookie (1.0.3)
@@ -465,29 +462,28 @@ GEM
     ice_nine (0.11.2)
     inifile (3.0.0)
     iniparse (1.5.0)
-    inspec (4.23.15)
+    inspec (4.24.8)
       faraday_middleware (>= 0.12.2, < 1.1)
-      inspec-core (= 4.23.15)
+      inspec-core (= 4.24.8)
       train (~> 3.0)
       train-aws (~> 0.1)
       train-habitat (~> 0.1)
       train-winrm (~> 0.2)
-    inspec-bin (4.23.15)
-      inspec (= 4.23.15)
-    inspec-core (4.23.15)
+    inspec-bin (4.24.8)
+      inspec (= 4.24.8)
+    inspec-core (4.24.8)
       addressable (~> 2.4)
       chef-telemetry (~> 1.0)
       faraday (>= 0.9.0, < 1.1)
       hashie (~> 3.4)
-      json_schemer (>= 0.2.1, < 0.2.12)
       license-acceptance (>= 0.2.13, < 3.0)
       method_source (>= 0.8, < 2.0)
       mixlib-log (~> 3.0)
       multipart-post (~> 2.0)
       parallel (~> 1.9)
       parslet (~> 1.5)
       pry (~> 0.13)
-      rspec (~> 3.9)
+      rspec (~> 3.9.0)
       rspec-its (~> 1.2)
       rubyzip (~> 1.2, >= 1.2.2)
       semverse (~> 3.0)
@@ -502,11 +498,6 @@ GEM
     jaro_winkler (1.5.4)
     jmespath (1.4.0)
     json (2.3.1)
-    json_schemer (0.2.11)
-      ecma-re-validator (~> 0.2)
-      hana (~> 1.3)
-      regexp_parser (~> 1.5)
-      uri_template (~> 0.7)
     jwt (2.2.2)
     kartograph (0.2.8)
     kitchen-azurerm (1.4.0)
@@ -518,7 +509,7 @@ GEM
     kitchen-digitalocean (0.11.2)
       droplet_kit (>= 3.7, < 4.0)
       test-kitchen (>= 1.17, < 3)
-    kitchen-dokken (2.11.1)
+    kitchen-dokken (2.11.2)
       docker-api (>= 1.33, < 3)
       lockfile (~> 2.1)
       test-kitchen (>= 1.15, < 3)
@@ -532,8 +523,8 @@ GEM
       test-kitchen
     kitchen-hyperv (0.5.5)
       test-kitchen (>= 1.4, < 3)
-    kitchen-inspec (2.2.1)
-      hashie (~> 3.4)
+    kitchen-inspec (2.2.2)
+      hashie (>= 3.4, < 5)
       inspec (>= 2.2.64, < 5.0)
       test-kitchen (>= 2.7, < 3)
     kitchen-vagrant (1.7.2)
@@ -721,7 +712,6 @@ GEM
       optimist (~> 3.0)
     rchardet (1.8.0)
     rdp-ruby-wmi (0.3.1)
-    regexp_parser (1.8.2)
     representable (3.0.4)
       declarative (< 0.1.0)
       declarative-option (< 0.2.0)
@@ -730,22 +720,22 @@ GEM
       addressable (>= 2.3.6, < 3.0.0)
     retriable (3.1.2)
     retryable (3.0.5)
-    rspec (3.10.0)
-      rspec-core (~> 3.10.0)
-      rspec-expectations (~> 3.10.0)
-      rspec-mocks (~> 3.10.0)
-    rspec-core (3.10.0)
-      rspec-support (~> 3.10.0)
-    rspec-expectations (3.10.0)
+    rspec (3.9.0)
+      rspec-core (~> 3.9.0)
+      rspec-expectations (~> 3.9.0)
+      rspec-mocks (~> 3.9.0)
+    rspec-core (3.9.3)
+      rspec-support (~> 3.9.3)
+    rspec-expectations (3.9.4)
       diff-lcs (>= 1.2.0, < 2.0)
-      rspec-support (~> 3.10.0)
+      rspec-support (~> 3.9.0)
     rspec-its (1.3.0)
       rspec-core (>= 3.0.0)
       rspec-expectations (>= 3.0.0)
-    rspec-mocks (3.10.0)
+    rspec-mocks (3.9.1)
       diff-lcs (>= 1.2.0, < 2.0)
-      rspec-support (~> 3.10.0)
-    rspec-support (3.10.0)
+      rspec-support (~> 3.9.0)
+    rspec-support (3.9.4)
     rubocop (0.75.1)
       jaro_winkler (~> 1.5.1)
       parallel (~> 1.10)
@@ -803,7 +793,7 @@ GEM
     thread_safe (0.3.6)
     timeliness (0.3.10)
     tomlrb (1.2.9)
-    train (3.3.27)
+    train (3.4.4)
       activesupport (>= 5.2.4.3, < 6.0.0)
       azure_graph_rbac (~> 0.16)
       azure_mgmt_key_vault (~> 0.17)
@@ -814,7 +804,7 @@ GEM
       google-api-client (>= 0.23.9, < 0.44.1)
       googleauth (>= 0.6.6, < 0.13.1)
       inifile (~> 3.0)
-      train-core (= 3.3.27)
+      train-core (= 3.4.4)
       train-winrm (~> 0.2)
     train-aws (0.1.18)
       aws-sdk-apigateway (~> 1.0)
@@ -866,7 +856,7 @@ GEM
       aws-sdk-sns (~> 1.9)
       aws-sdk-sqs (~> 1.10)
       aws-sdk-ssm (~> 1.0)
-    train-core (3.3.27)
+    train-core (3.4.4)
       addressable (~> 2.5)
       ffi (!= 1.13.0)
       json (>= 1.8, < 3.0)
@@ -886,10 +876,10 @@ GEM
       tty-cursor (~> 0.7)
     tty-color (0.6.0)
     tty-cursor (0.7.1)
-    tty-prompt (0.22.0)
+    tty-prompt (0.23.0)
       pastel (~> 0.8)
       tty-reader (~> 0.8)
-    tty-reader (0.8.0)
+    tty-reader (0.9.0)
       tty-cursor (~> 0.7)
       tty-screen (~> 0.8)
       wisper (~> 2.0)
@@ -908,7 +898,6 @@ GEM
     unf_ext (0.0.7.7-x86-mingw32)
     unicode-display_width (1.6.1)
     unicode_utils (1.4.0)
-    uri_template (0.7.0)
     uuidtools (2.1.5)
     virtus (1.0.5)
       axiom-types (~> 0.1)

RELEASE_NOTES.md

@@ -20,14 +20,36 @@ The Kitchen Google driver for Test Kitchen was updated from 2.0.3 to 2.1.0. This
 
 The kitchen-vagrant plugin is updated from version 1.7.1 to 1.7.2 with a bug fix to no longer stop with an error when updating a Vagrant box that has not yet been downloaded.
 
+### Kitchen Dokken
+
+Kitchen Dokken has been updated to 2.11.2 to resolve failures from creating containers during the Test Kitchen converge. Thanks for reporting this issue [@emeshuris](https://github.com/emeshuris)!
+
 ### Chef InSpec
 
-Chef InSpec is updated from 4.23.11 to 4.23.15. A bug fix included ensuring that waiver expiration data is always populated.
+Chef InSpec has been updated to 4.24.8 including the following improvements:
+
+- An unset `HOME` environment variable will not cause execution failures
+- You can use wildcards in `platform-name` and `release` in InSpec profiles. Thanks for this improvement [@yarick](https://github.com/yarick)!
+- The `WMI` resource now returns an array to support returning multiple WMI objects
+- The `package` resource on Windows properly escapes package names. Thanks for this improvement [@ramereth](https://github.com/ramereth)!
+- The `grub_conf` resource succeeds even if without a `menuentry` in the grub config
+- Loaded plugins won't try to re-load themselves
+- Waiver expiration is now always populated
 
 ### chef-vault
 
 We've updated the release of chef-vault to 4.1. Chef Vault 4.1 properly handles escape strings in secrets and greatly improves performance for users with large numbers of secrets. Thanks for the performance work [@Annih](https://github.com/Annih)!
 
+### knife-ec2
+
+The knife-ec2 plugin has been updated to 2.1.0, which allows for the creation of instances with ST1 or SC1 EBS volume types
+
+## Security
+
+### openSSL
+
+The openSSL library has been updated to 1.0.2x to resolve [CVE-2020-1971](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1971).
+
 # ChefDK 4.12
 
 ## Updates Components